CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2564

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile32.58th
PublishedMay 9, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple stack-based buffer overflows in the Sienzo Digital Music Mentor (DMM) 2.6.0.4 ActiveX control (DSKernel2.dll) allow remote attackers to execute arbitrary code via a long argument to the (1) LockModules or (2) UnlockModule function.

Affected Platforms (CPE)

πŸ“¦
Sienzo

Digital Music Mentor

= 2.6.0.4

References & Advisories

πŸ”— http://moaxb.blogspot.com/2007_05_06_archive.html
πŸ”— http://osvdb.org/34338
πŸ”— http://www.securityfocus.com/bid/23838
πŸ”— http://www.shinnai.altervista.org/moaxb/20070506/sienzo.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/34120
πŸ”— http://moaxb.blogspot.com/2007_05_06_archive.html
πŸ”— http://osvdb.org/34338
πŸ”— http://www.securityfocus.com/bid/23838

Related Vulnerabilities

CVE-2007-276310.0

Buffer overflow in the UnlockSupport function in the LockModules subsystem in a certain ActiveX control in ltmm15.dll in Sienzo Di...

CVE-2007-00189.3

Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allo...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...